xmms

• Author: voroskoi
• Vulnerable: 1.2.10-11
• Unaffected: 1.2.10-12terminus1

Secunia Research has discovered two vulnerabilities in XMMS, which can be exploited by malicious people to compromise a user’s system.

1. An integer underflow error exists in the processing of skin bitmap images. This can be exploited to cause a stack-based buffer overflow via specially crafted skin images containing manipulated header information. Successful exploitation allows execution of arbitrary code.
2. An integer overflow error exists in the processing of skin bitmap images. This can be exploited to cause memory corruption via specially crafted skin images containing manipulated header information. Successful exploitation may allow the execution of arbitrary code.

• Bug Tracker URL: http://bugs.frugalware.org/task/1854

CVEs:

• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0653
• http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0654